HTTPS / TLS / Secure Post or someway to encrypt traffic

khoih-prog / WiFiWebServer

This is simple yet complete WebServer library for AVR, Portenta_H7, Teensy, SAM DUE, SAMD, STM32, RP2040-based, etc. boards running WiFi modules/shields (WiFiNINA, CYW43439, U-Blox W101, W102, etc.). The functions are similar and compatible to ESP8266/ESP32 WebServer libraries to make life much easier to port sketches from ESP8266/ESP32. Now using WiFiMulti_Generic library

MIT License

105 stars 21 forks source link

HTTPS / TLS / Secure Post or someway to encrypt traffic #19

Closed modemmike closed 2 years ago

modemmike commented 2 years ago

Let me start by saying I already know HTTPS is not possible on these SAMD devices but can anyone recommend some way of encrypting the communications to prevent man in the middle? I'm posting data to the server which I'd like to not be in plain text. Someone could in theory watch the traffic with WireShark and figure out the API commands being sent to my SAMD devices (matrix portal). Maybe AES? I'm very new to this type of development so I'm struggling to figure out something lightweight enough to run on these.

khoih-prog commented 2 years ago

Hi @modemmike

I already know HTTPS is not possible on these SAMD devices

SAMD using WiFiNINA_Generic, WiFiNINA or EthernetWebServer_SSL library can use SSL/TLS as client.

It's not advisable to use SAMD as SSL/TLS server because of processing-power limitation.

I'm closing the issue now as this is not a bug of this library and not a good enhancement for this WiFiWebServer library.

I suggest you post on Arduino Forum to ask for help or advice for your project.

Good Luck,